High severity8.8NVD Advisory· Published Aug 7, 2024· Updated Jun 17, 2026
CVE-2024-6707
CVE-2024-6707
Description
Attacker controlled files can be uploaded to arbitrary locations on the web server's filesystem by abusing a path traversal vulnerability.
AI Insight
LLM-synthesized narrative grounded in this CVE's description and references.
Affected products
2- Open WebUI/Open WebUIv5Range: 0.1.105
Patches
Vulnerability mechanics
References
3- korelogic.com/Resources/Advisories/KL-001-2024-006.txtnvdExploitThird Party Advisory
- seclists.org/fulldisclosure/2024/Aug/4nvd
- www.openwall.com/lists/oss-security/2024/08/08/7nvd
News mentions
0No linked articles in our index yet.